Photograph: The Canadian Press
An Indigo bookstore is seen Wednesday, November 4, 2020 in Laval, Que. Indigo says it has created a brief web site for purchasers to make use of for shopping after a cybersecurity incident hit the corporate. THE CANADIAN PRESS/Ryan Remiorz
Indigo Books & Music Inc. has created a brief web site for its prospects to browse for books and items after a cyberattack halted the corporate’s on-line operations final week.
In a discover posted to the brand new web site Friday titled “store in retailer, window-shop on-line,” the Toronto-based retailer mentioned the momentary web site solely permits for shopping and it’s nonetheless not potential to make Indigo purchases on-line.
The corporate didn’t provide a timeline for when its web site or app, which can be unavailable, would possibly return.
“We’re working exhausting to offer the seamless on-line procuring expertise that our prospects have come to anticipate,” the notice learn.
“Please examine again every day for updates and progress.”
The momentary web site was launched greater than every week after Indigo first notified prospects of a “cybersecurity incident” that left it unable to course of digital funds, together with via its web site.
When the incident started Feb. 8, Indigo was solely in a position to course of purchases made in retailer with money, however a few of its companies, together with credit score and debit funds and a few return capabilities, have since been restored.
The corporate has mentioned it instantly engaged third-party consultants to research and resolve the matter, however has nonetheless not defined the character of the incident or what induced it.
“Our investigation is underneath method however not but full,” it added Friday.
The incident has positioned a lot of Indigo’s gross sales in jeopardy as prospects should buy gadgets in brick-and-mortar shops and have been solely in a position to make purchases in money for a lot of the outage. Although debit and bank cards at the moment are accepted at shops, the general influence on Indigo’s gross sales will likely be felt extra deeply the longer the opposite issues persist.
Its investigation has thus far not discovered any cases of buyer credit score or debit playing cards being compromised, but it surely has not utterly dominated such a breach out.
“If at any level sooner or later we decide that private knowledge has been compromised, we decide to contacting these impacted instantly,” Indigo wrote in its Friday notice.
The corporate has additionally assured prospects that factors distributed via its Plum loyalty program haven’t been impacted, however redemptions, sign-ups, or renewals aren’t at present potential.
Nonetheless, prospects can nonetheless obtain Plum reductions for purchases made in retailer whereas the incident is ongoing. Factors will likely be issued at a future date so long as customers retain their receipts.
Plum factors usually expire when a buyer would not make a qualifying buy inside 12 months. Buyers with factors set to run out in February, will see their expiration date prolonged to March 31, Indigo mentioned.
The corporate has additionally prolonged the 30-day alternate or return timeline for purchases that needed to be introduced again between Feb. 8 and 15. Prospects with such gadgets will now have till Feb. 21 to make returns.
The retailer stays unable to cancel orders positioned earlier than the incident, however mentioned as soon as the difficulty is resolved, it can present refunds. It’s also unable to supply order standing updates or estimated supply timelines for folks awaiting shipments from Indigo.